FortiGuard Labs is aware of a report that a new ransomware strain named “RansomBoggs” was deployed to multiple unnamed organizations in Ukraine. The ransomware encrypts files on compromised machines and provides attacker’s contact information for victims to talk with the attacker for file recovery.Why is this Significant?This is significant because RansomBoggs is the latest ransomware that targets Ukrainian organizations. Based on the tactics, techniques, and procedures (TTPs) used in the attack, security vendor ESET attributed RansomBoggs to the Sandworm APT group who is believed to be associated with the Main Directorate of the General Staff of the Armed Forces of the Russian Federation.What is RansomBoggs Ransomware?RansomBoggs ransomware encrypts files on compromised machines and adds a “.chsch” file extension to the affected files. It drops a ransom note requesting victims to get in touch with the attacker for file recovery.Currently, there is no indication that RansomBoggs ransomware has wiper functionality.What is the Status of Coverage?FortiGuard Labs provides the following AV signature for RansomBoggs ransomware:MSIL/Filecoder.A!tr.ransom
More Stories
kernel-6.2.9-100.fc36
FEDORA-2023-d525cf5272 Packages in this update: kernel-6.2.9-100.fc36 Update description: The 6.2.9 stable kernel update contains a number of important fixes across...
kernel-6.2.9-200.fc37
FEDORA-2023-98251cef79 Packages in this update: kernel-6.2.9-200.fc37 Update description: The 6.2.9 stable kernel update contains a number of important fixes across...
kernel-6.2.9-300.fc38
FEDORA-2023-c46eb02bbf Packages in this update: kernel-6.2.9-300.fc38 Update description: The 6.2.9 stable kernel update contains a number of important fixes across...
USN-5855-3: ImageMagick regression
USN-5855-2 fixed vulnerabilities in ImageMagick. Unfortunately an additional mitigation caused a regression. This update fixes the problem. We apologize for...
USN-5991-1: Linux kernel (GCP) vulnerabilities
It was discovered that the System V IPC implementation in the Linux kernel did not properly handle large shared memory...
seamonkey-2.53.16-1.el7
FEDORA-EPEL-2023-7be8f2df20 Packages in this update: seamonkey-2.53.16-1.el7 Update description: Update to 2.53.16 Langpacks are now provided in the modern form of...